FIRMA PSBT AIRGAP
CUVEX VS WALLETS HARDWARE AIR GAPPED TRADICIONALES
Las wallets hardware air-gapped son consideradas uno de los métodos más seguros para firmar transacciones de Bitcoin.
Tradicionalmente, una wallet AirGap aísla el dispositivo de firma de cualquier red y transfiere los PSBT mediante códigos QR.
Cuvex se basa en el modelo AirGap preservando el aislamiento de las claves privadas pero resolviendo las limitaciones de usabilidad del AirGap basado en
QR en entornos como multisig, CoinJoin y transacciones PSBT complejas.
¿Qué es una Wallet Hardware Air-Gapped?
An AirGap is the physical or logical separation between systems designed to prevent information leakage.
Many devices claim to be air-gapped, yet still rely on indirect dependencies that undermine true isolation.
EL PROBLEMA DEL SINGLE AIRGAP
In a classic workflow:
-
The device receives data
-
It accesses the secret
-
It signs
This concentrates risk within a single trust domain.
THE CUVEX DOUBLE
AIRGAP FLOW
-
The transaction is prepared in a watch-only app
-
The unsigned PSBT is transferred to the device
-
The encrypted seed is consumed through a separate channel (NFC or USB-C)
-
Signing occurs without exposing the secret
Transaction preparation and signing never share the same context.
THREATS MITIGATED
The Double AirGap reduces:
Key
extraction
Metadata
leakage
Correlation
attacks
Human
error
WHY THIS MATTERS
Most self-custody incidents do not occur due to broken cryptography, but rather because of poor architecture.
The Double AirGap PSBT addresses the problem at the design level.